ValidKube combines open-source tools to help ensure Kubernetes YAML best practices, hygiene and security.
The tool can verify your Kubernetes configuration files through kubeval, remove clutter from your Kubernetes manifests through kubectl-neat, and can scan YAML code for security vulnerabilities with trivy.
RELATED CONTENT: Abstracting complexity from Kubernetes breaks down barrier to entry
Kubeval uses schemas generated from the Kubernetes OpenAPI specification, and therefore can validate schemas for multiple versions of Kubernetes.
Kubectl-neat offers general tidying for status, metadata, and empty fields. It looks for two types of things: default values inserted by Kubernetes’ object model, and common mutating controllers.
Trivy is a simple and comprehensive scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues.
“We have seen firsthand that, all too often, there is a struggle when it comes to Kubernetes fundamentals, expertise and best practices. Also, being a by dev-for-dev company, who significantly relies on open source and Kubernetes ourselves, we knew we wanted to support the community & ecosystem by building a tool that could help remove some of the existing friction points and knowledge gaps. And so – ValidKube was born,” Itiel Shwartz, the CTO and co-founder of Komodor, the company behind the project wrote in a blog post.